» * 



1/5 



18 



16 



DATA MONITORING 
AND 

ANALYSIS DEVICE 



APIs 



48 



INTRUSION 
DETECTION 
DEVICE 



14 



FIG. 1 



3/5 









a: 




HI 




CD 




on 




< 




£L 





r 



co 





CO 

CD 

LL 



4/5 



-58 



STATISTICS 
COLLECTION 



STATISTICS 
FILTER 

t 



-56 



IP FRAGMENT 

&CRC 
* 



-54 



MAC 



If 



RX 



PACKETS 



-50 



A 



> TRIGGER 




f 


CAP" 
PAC 


rURE 

;ket 


1 


r 



PROTOCOL 
DECODING 







* 


66^ 


SIGNATURE 
MATCHING 






f 


68 "\__ 


ALERT LOG 



FIG. 4 



5/5 



70 



80 



PROCESSOR 



r 



82 



MEMORY 



r 



84 



FIXED 
STORAGE 



r 



86 



REMOVABLE 
STORAGE 



^88 
A „ 



90 



NETWORK 
INTERFACE(S) 



FIG. 5 



